“ But in 2018, our anti-phishing technologies started blocking phishing pages that resemble popular pornography websites.
It is worth mentioning that phishing pages cannot influence the original page in any way; they merely copy it.
For example, to access an alleged adult video, the phishing page requires the user to download and update a video player.
The authentic Pornhub page is not connected to the phishing.
Instead, they focus on just two: mostly Pornhub and XNXX,
whose users were targeted by bots belonging to the Jimmy malware family.
Apparently Pornhub remains popular, not only to regular users of the web,
but also to cybercriminals looking for another way of gaining illegal
profits by selling user credentials. At the same time, the number of variations of malware we were able to
spot fell from 27 to 22, but the number of families increased from three to five, meaning that
pornography credentials are considered valuable to ever more cybercriminals. ”